PublicationConferenceYearTandem
Access Your Data… if You Can: An Analysis of Dark Patterns Against the Right of Access on Popular WebsitesAnnual Privacy Forum (APF’24)2024SCOUT
Web-based prototype of a visual and interactive deep learning simulationDELFI’242024SCOUT
FAIR Learning Technologies with Web Components and PackagesDELFI’242024SCOUT
In Search of Partitioning Oracle Attacks Against TLS Session TicketsESORICS’242024SEAN
LanDscAPe: Exploring LDAP Weaknesses and Data Leaks at Internet ScaleUSENIX Security’242024SEAN
Security Analysis of BigBlueButton
and eduMEET
ACNS’242024MoViSec
SoK: SSO-Monitor — The Current State and Future Research Directions in Single Sign-On Security Measurements2024 IEEE 9th European Symposium on Security and Privacy (EuroS&P)2024SES
WebWriter: Authoring and Remixing ExplorablesEuropean Conference on Technology Enhanced Learning2024SCOUT
Evaluating Authoring Tools with the Explorable Authoring RequirementsarXiv preprint2024SCOUT
We Really Need to Talk About Session Tickets: A Large-Scale Analysis of Cryptographic Dangers with TLS Session TicketsUSENIX Security’232023SEAN
Content-Type: multipart/oracle – Tapping into Format Oracles in Email End-to-End EncryptionUSENIX Security’232023SEAN
Every Signature is Broken: On the Insecurity of Microsoft Office’s OOXML SignaturesUSENIX Security’232023
Behind the Screens: The Security & Privacy Advice Landscape of Children in Grades 5 & 6WiPSCE’232023SCOUT
WebWriter: A System to Author and Remix Explorables–Requirements & First PrototypeGesellschaft für Informatik e.V.2023SCOUT
Assessing the Security and Privacy of Baby Monitor AppsJournal of Cybersecurity and Privacy2023MedMax
Improving trace synthesis by utilizing computer vision for user action emulationForensic Science International: Digital Investigation2023MedMax
Security Analysis of the 3MF Data FormatRAID’232023
Poster: Circumventing the GFW with TLS Record Fragmentation2023 ACM SIGSAC Conference on Computer and Communications Security2023SEAN
Finding All Cross-Site Needles in the DOM Stack: A Comprehensive Methodology for the Automatic XS-Leak Detection in Web Browsers2023 ACM SIGSAC Conference on Computer and Communications Security2023MoViSec
Accurate Real-Time Labeling of Application Traffic2022 IEEE 47th Conference on Local Computer Networks (LCN)2022SCOUT
DISTINCT: Identity Theft using In-Browser Communications in Dual-Window Single Sign-On2022 ACM SIGSAC Conference on Computer and Communications Security2022SES